Student Online Personal Protection Act (SOPPA)
Effective July 1, 2021, school districts will be required by the Student Online Personal Protection Act (SOPPA) to provide additional guarantees that student data is protected when collected by educational technology companies, and that data is used for beneficial purposes only (105 ILCS 85).
DISTRICT REQUIREMENTS Below is an overview of the new requirements. Please refer to the legislation for specific timelines and components of each element. School districts must:
3. Post contracts for each operator within 10 days of signing.
4. Annually post subcontractors for each operator.
6. Post data breaches within 10 days and notify parents within 30 days.
7. Create a policy for who can sign contracts with operators.
8. Designate a privacy officer to ensure compliance.
Henry-Stark Counties Special Education #801 is a member of ISPAThe Illinois Student Privacy Alliance (ISPA) is a free consortium that allows school districts to access management tools and resources for data privacy agreements. All Illinois school districts are invited to join ISPA. When used in conjunction with clear policies and procedures, ISPA allows districts to comply with Illinois’ (SOPPA).
Family Educational Rights and Privacy Act (FERPA)
Children’s Online Privacy Protection Act (COPPA)
Children’s Internet Protection Act (CIPA)
- Data breaches that involve 10% or more of students will have parent notification within 30 days.
Parents/guardians have the right to inspect, review, correct, and opt-out information maintained by the school, operator, and the Illinois State Board of Education. All requests should be directed to the Technologist by using the following email address: email@example.com
If you would like to view the Digital Privacy Agreements that Henry-Stark Counties Special Education currently holds, please click the following link HSCSED DPA's